Pharma and biotech companies experience more data breaches than any other industry in the United States, given the high value of intellectual property. Pharma attackers are looking to break in, move laterally, remain undiscovered for long periods of time, and eventually exfiltrate the crown jewels. In fact, on average it takes about 350 days to identify and contain a data breach in the pharma industry.
The company had a mandate to accelerate the move of more than 50% of its total workloads to the cloud and were struggling with the level of risk exposure this would create around privileged access, specifically from over-provisioned human and machine identities with powerful permissions. The security team was determined to get ahead of the risk but lacked the level of visibility required to truly understand who in their expanding cloud environment had access to critical resources and what types of operations were they performing on them. Click below for the fix.